package com.fz.song.mcos.controller;

import org.springframework.security.access.annotation.Secured;
import org.springframework.security.access.prepost.PreAuthorize;
import org.springframework.web.bind.annotation.GetMapping;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

@RestController
@RequestMapping("user")
public class UserController {

    @GetMapping("index")
//    @Secured({"ROLE_admin","ROLE_user"})
    @PreAuthorize("hasAnyRole('admin','user')")
    public String hello() {
        return "hello user";
    }
}
